"There were two exploit links on the NBC website. The first one was on the main default (entry) page. And the second one was located on hxxp://www.nbc.com/assets/core/js/s_wrapper.js," said the HitmanPro blog. "It serves both Java (CVE-2013-0422) and PDF exploits. The exploit drops the Citadel Trojan, which is used for banking fraud and cyberespionage."

The Java exploit referred to, which affects Macs, Windows PCs and Linux boxes alike, was responsible for the recently announced hacks into Apple's, Facebook's and Twitter's employee networks.

The HitmanPro posting noted that RedKit was also installing the ZeroAccess malware, which "moderates an affected user's Internet experience by modifying search results, and generates pay-per-click advertising revenue for its controllers," as well an unknown form of malware.